A security update addresses multiple vulnerabilities (CVE-2026-42000, CVE-2026-42001, CVE-2026-42002, CVE-2026-42396) in the PowerDNS (pdns) server that could lead to denial of service or information disclosure. For the Debian stable distribution (trixie), these issues are fixed in pdns version 4.9.15-0+deb13u1. Administrators should upgrade their pdns packages to this version immediately.
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6284-1] pdns security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6284-1] pdns security update From: Moritz Muehlenhoff <jmm@debian.org> Date: Wed, 20 May 2026 18:59:59 +0000 Message-id: <[🔎] ag4Er32KUHPAunZ0@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6284-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff May 20, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : pdns CVE ID : CVE-2026-42000 CVE-2026-42001 CVE-2026-42002 CVE-2026-42396 Multiple vulnerabiliites have been discovered in the PowerDNS DNS server, which could result in denial of service or information disclosure. For the stable distribution (trixie), these problems have been fixed in version 4.9.15-0+deb13u1. We recommend that you upgrade your pdns packages. For the detailed security status of pdns please refer to its security tracker page at: https://security-tracker.debian.org/tracker/pdns Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmoN+l8ACgkQEMKTtsN8 TjZZGw//VvgqrzNz1HtSWaxbW+Elo1AK3o4Ku0zOmYWodm008r7gIy9dSwAjEGZg 4zPSPONEx39napzT4bDGJ8gx87AmQYOs5m6ksd8ItxMCZ9uMnQpmHjl7uBtx741j rV6xhFFrSVvit3ISbdeAcbOv6tC580C1cws8zPvrTWsCxTEhySIjaXj78kI5ptqh JSVyhLXRvmvFycMqrgIzSVcZBhDj4LBTpBsc9DfD5WNcgDx7mNIJTjJmmwCezJOS ZKEKQwskhUM9GUxlYOkvbV0bC1mONkR1qPz7NJYUhdix07FqqMI3lLTC36U+NQ9d 5ywI82G6ConiPBWC8BrmZLnpZvMQX1R32b6KJ2zNPhH6WWJ88+5K0MeYYrY1MqN4 LOJeEtjl3CTSCRX5Lt9LTPl18pVQobM3chWEK+P/DVZOpD1NFv3ijp3Fzk11B0KS Tv5+epxpkBZaqfjgXCNe5dlWAzLyhto0LCm+CQie1hHY69LMXJbrnkG92CxJ/cox +it0KzQDuq0VckCKLbxGMNxjcy/sZhtOB+jWhjlX2oo3hbiJcbpA4B9CYz4qYzP4 2WmbubYblF1Zjb2YbXGp/3znoNJg7JosGl/xgSIIJg5v5L1twlRF49FtoWrv7Wi6 ilH+r/2TivbDj8lyA5djXW1BIPIzAnIqNDuTAghxk5VT9vwUG3I= =xpub -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Moritz Muehlenhoff (on-list) Moritz Muehlenhoff (off-list) Prev by Date: [SECURITY] [DSA 6283-1] firefox-esr security update Previous by thread: [SECURITY] [DSA 6283-1] firefox-esr security update Index(es): Date Thread